Defaults.Exposed › Setup › DMARC

How to set up DMARC on GoDaddy

Add a DMARC record in GoDaddy DNS to tell receivers what to do with email that fails your SPF and DKIM checks.

Why this matters to your business

DMARC is the policy that ties SPF and DKIM together. It tells receiving mail servers what to do when an email claiming to be from your domain fails those checks — ignore it, send it to spam, or reject it outright — and it can email you reports showing who is sending (and forging) mail as you. In plain terms: DMARC is what actually stops criminals from impersonating your domain to scam your customers and staff. It’s free, and it turns SPF and DKIM from “nice to have” into real protection.

Do SPF and DKIM first

DMARC depends on SPF and DKIM. Set those up before, or alongside, DMARC. A DMARC record on its own — with no working SPF/DKIM — can cause your own legitimate email to be blocked. Start gently (see the policy note below) and tighten over time.

First, confirm GoDaddy runs your DNS

DMARC is a DNS record, so it only works if your domain’s nameservers point at GoDaddy. In your GoDaddy account, open the domain and check the Nameservers section. If it shows another company’s nameservers (a web host, Cloudflare, your email provider), add the DMARC record there instead — adding it at GoDaddy will have no effect.

What you’ll add

A single TXT record at a special host name: _dmarc.

A safe starting value, which only monitors and never blocks anything, is:

v=DMARC1; p=none; rua=mailto:[email protected]

• p=none = monitor only; nothing gets blocked yet. Good for the first few weeks.
• rua=mailto:... = where the summary reports are sent. Use a real mailbox you check.
• Once you’ve confirmed (via the reports and the free check) that your genuine mail passes, you can tighten the policy to p=quarantine (send fails to spam) and later p=reject (refuse fails outright).

Steps in GoDaddy

1. Sign in to GoDaddy and open your domain’s DNS settings (look for DNS, Manage DNS, or DNS / Records).
2. Add a new record (look for Add / Add New Record).
3. Choose TXT as the record type.
4. In the Name / Host field, enter exactly _dmarc (with the leading underscore). Do not type _dmarc.yourdomain.com — GoDaddy appends your domain automatically.
5. In the Value field, paste your DMARC string, e.g. v=DMARC1; p=none; rua=mailto:[email protected] (replace the email with a real address you monitor).
6. Leave TTL at the default.
7. Save.

GoDaddy quirks people get wrong

• The host name is _dmarc, with the underscore. Leaving off the underscore, or typing the full domain after it, puts the record in the wrong place and DMARC won’t be found.
• No quotes. Paste the value plain; GoDaddy adds the quoting itself. Don’t wrap it in "...".
• Only one DMARC record. There should be exactly one TXT record at _dmarc. If one already exists, edit it rather than adding a second.
• Start with p=none. Jumping straight to p=reject before SPF/DKIM are solid can block your own invoices and quotes. Monitor first, tighten later.
• Use a real reporting mailbox. The rua address must be one you can actually receive at.
• Allow time. DNS changes can take from minutes up to a couple of hours to take effect everywhere.

Verify it worked

Once saved, confirm your DMARC record is live and sensible with the free check on Defaults.Exposed. Enter your domain and it’ll tell you in plain language whether DMARC is set up correctly and what to do next. Your data is processed in the EU.

Done? Check your domain free to confirm it worked — and see your full grade across all 34 checks.